]> git.ipfire.org Git - thirdparty/freeradius-server.git/commitdiff
projects / thirdparty / freeradius-server.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 76c9cd5)
Copy certificate pairs to verify certificate virtual server
authorNick Porter <nick@portercomputing.co.uk>
Fri, 1 Nov 2024 14:50:33 +0000 (14:50 +0000)
committerNick Porter <nick@portercomputing.co.uk>
Tue, 5 Nov 2024 10:13:55 +0000 (10:13 +0000)
src/lib/tls/verify.c patch | blob | blame | history

diff --git a/src/lib/tls/verify.c b/src/lib/tls/verify.c
index 39dd73e484c5cc58810926dd7ef5327bbb19d386..f55f7875cedd10829152caa9ad8b2aef1bb465a3 100644 (file)
--- a/src/lib/tls/verify.c
+++ b/src/lib/tls/verify.c
@@ -452,6 +452,14 @@ static unlang_action_t tls_verify_client_cert_push(request_t *request, fr_tls_se
        MEM(pair_prepend_request(&vp, attr_tls_packet_type) >= 0);
        vp->vp_uint32 = enum_tls_packet_type_verify_certificate->vb_uint32;
 
+       /*
+        *      Copy certificate pairs to the child session state
+        */
+       vp = NULL;
+       while ((vp = fr_pair_find_by_da(&request->parent->session_state_pairs, vp, attr_tls_certificate))) {
+               fr_pair_append(&request->session_state_pairs, fr_pair_copy(request->session_state_ctx, vp));
+       }
+
        MEM(pair_append_request(&vp, attr_tls_session_resumed) >= 0);
        vp->vp_bool = tls_session->validate.resumed;
 
Mirror of https://github.com/FreeRADIUS/freeradius-server.git